OUR NAT Pool is becoming corupt and duplicate IP's are showing up on the public side of the NAT table. We just upgraded from IOS 12.2 to 12.3 to take advantage of the new rate-limiting features. My problem is that 2-3 times a day I have to perform a "clear ip nat trans *". We are an ISP with right around 1500 DSL users all doing NAT translations on the router. I have four full Class C addresses available in my NAT pool. When a DSL customer becomes infected with a virus that does some sort of probing and scanning our NAT pool gets "chewed up" and I have to clear it to restore service to our customers. Also, daily I see a customer with a private address somehow getting NAT'ed to a Public IP that is already NAT'ed to someone else. So the customer has 50% packet loss in this case because two customers are sharing one public address. How this happens I dont know. It's almost like the previous customer who had that address never fully released it to the pool. Can you please offer some recomandations to me.
Thank You Very Much!
Thank You Very Much!